79 matches found
EUVD-2005-0676
Malware in sbrugna...
EUVD-2006-3330
Malware in sbrugna...
EUVD-2005-4614
Malware in sbrugna...
EUVD-2002-2328
Malware in sbrugna...
EUVD-2005-0678
Malware in sbrugna...
EUVD-2006-5416
Malware in sbrugna...
EUVD-2005-2653
Malware in sbrugna...
EUVD-2003-1078
Malware in sbrugna...
EUVD-2006-3329
Malware in sbrugna...
EUVD-2005-0677
Malware in sbrugna...
CVE-2002-2350
Cross-site scripting XSS vulnerability in zusershow.php in dbtreelistpropertymethod.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter...
phpoutsourcing zorum 3.5 - Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12777/info Zorum is a freely available, open source Web-based forum application implemented in PHP. It is available for UNIX, Linux, and any other platform that supports PHP script execution. Multiple remote vulnerabiliti...
PHPOutsourcing Zorum 3.x Remote Include Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6669/info It has been reported that Zorum may allow remote users to influence to location of PHP includes. Because of this, it is possible for a remote user to include an external arbitrary PHP script containing commands...
Zorum 3.5 DBProperty.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20606/info Zorum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script cod...
PHPOutsourcing Zorum 3.4 Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8396/info A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path. This issue may allow an attack...
PHPOutsourcing Zorum 3.5 Prod.PHP Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14601/info Zorum is prone to an arbitrary command execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. This issue may facilitate unauthorized remote access i...
PHPOutSourcing Zorum 3.x Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8388/info A cross-site scripting vulnerability has been reported in the index.php script of PHPOutSourcing Zorum. Because of this, an attacker may be able to execute HTML and script code in the browsers of target users in...
Zorum index.php多个参数SQL注入漏洞
BUGTRAQ: 18681 Zorum是一款用PHP实现的免费开源论坛程序。 Zorum处理用户请求时存在多个输入验证漏洞,远程攻击者可能利用此漏洞对服务器进行SQL注入攻击。 Zorum的index.php脚本没有正确的过滤用户输入中的offset、tid、fromid、sortby、fromfrommethod和fromfromlist参数,允许远程攻击者执行SQL注入攻击。 BUGTRAQ: 18681 厂商补丁: PHPOutsourcing -------------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Zorum 3.5 /gorum/prod.php 远程代码执行漏洞
BugCVE: CVE-2005-2651 BUGTRAQ: 14601 Zorum的/gorum/prod.php文件中存在远程代码执行漏洞: 07 $doubleApp = isset$argv1; ... 14 if $doubleApp 15 16 $appDir = $argv1; 17 system"mkdir $prodDir/$appDir"; ... Zorum 3.5 厂商补丁: Zorum ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://zorum.phpoutsourcing.com/...
CVE-2002-2350
Cross-site scripting XSS vulnerability in zusershow.php in dbtreelistpropertymethod.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter...